Back to skill

Security audit

Macbook optimizer

Security checks across malware telemetry and agentic risk

Overview

This Mac optimizer is not overtly malicious, but it asks an agent to perform broad cleanup, settings changes, and optional persistent monitoring that users should review carefully.

Install only if you want an agent to help manage your Mac, not just report metrics. Start with read-only checks, require a preview before deletion, avoid granting Full Disk Access or Accessibility unless a specific task needs it, and approve cleanup, login item, service, cron, and power-setting changes one at a time.

SkillSpector

By NVIDIA
Vulnerability Patterns
  • Excessive AgencyUnrestricted Tool Access, Autonomous Decision Making, Scope Creep
  • Trigger AbuseOverly Broad Trigger, Shadow Command Trigger, Keyword Baiting Trigger
  • Prompt InjectionInstruction Override, Hidden Instructions, Exfiltration Commands
  • Data ExfiltrationExternal Transmission, Env Variable Harvesting, File System Enumeration
  • Privilege EscalationExcessive Permissions, Sudo/Root Execution, Credential Access
Findings (5)

Missing User Warnings

Medium
Confidence
92% confidence
Finding
The README advertises cleanup functionality such as 'Cleanup Tools' and 'Clean up disk space' without warning users that cleanup actions may delete files, alter system state, or affect running applications. In an agent skill context, vague cleanup claims can cause users to authorize destructive actions without informed consent, increasing the risk of accidental data loss or unsafe system changes.

Vague Triggers

Medium
Confidence
89% confidence
Finding
The usage examples are broad enough to trigger on ordinary troubleshooting requests like 'My MacBook is slow' or 'show me everything,' which can cause the skill to activate without clear user intent to perform optimization or cleanup actions. Because the skill also advertises automated fixes and GUI actions, ambiguous activation increases the risk of unintended system changes or exposure of sensitive local information.

Vague Triggers

Medium
Confidence
86% confidence
Finding
The top-level description claims comprehensive optimization, troubleshooting, and automated fixes across many system areas without defining clear scope limits or prohibited actions. In an agent environment, that broad promise can cause the skill to be chosen for general Mac requests and authorize invasive behaviors that users may not expect from a diagnostic tool.

Missing User Warnings

Medium
Confidence
92% confidence
Finding
The skill promotes 'automated cleanup' and optimization before presenting a prominent warning that it may delete files, alter startup items, or change system settings. Users may interpret this as routine maintenance, but these actions can cause data loss, break workflows, or weaken system configuration if performed on caches, downloads, login items, or privacy-related settings.

Unrestricted Tool Access

Medium
Category
Excessive Agency
Content
## Advanced Commands Available

The agent intelligently uses these macOS tools:

**System Info:**
- `system_profiler` - Complete hardware/software information
Confidence
84% confidence
Finding
tools: *

VirusTotal

63/63 vendors flagged this skill as clean.

View on VirusTotal

Static analysis

No suspicious patterns detected.